Duo 2FA: Authenticate Using UT Two-Factor

Topics Answered in this Article

Campus Specific Support:

  • UTK, UTSA, IPS, UTIA, and UTSI - OIT HelpDesk (865) 974-9900
  • UTC - UTC HelpDesk (423) 425-4000
  • UTHSC - UTHSC HelpDesk (901) 448-2222
  • UTM - UTM HelpDesk (731) 881-7900

Authentication Steps

Below are the general authentication steps used for UT systems that do not authenticate through the Central Authentication Service (CAS).
The steps may vary slightly depending on the application or operating system being used.

Logging In

  1. In the app you are accessing, when prompted, enter your full UT email address as the username. Click Sign In.
    • Students: netid@vols.utk.edu
    • Faculty/Staff: netid@utk.edu
  2. On the UT sign-in screen that appears, enter your full email address once more. Click Next.
    Sign‑in page prompting the user to enter their full email address.
  3. Enter your NetID password. Click 'Sign In.'
    Sign‑in page prompting the user to enter Password.

Duo Authentication

  • Duo authentication automatically defaults to the authentication method you last used on the same browser and device.
  • You can cancel an automatic prompt and select Other options to change your authentication method.
  • When using a new browser or device to log in, Duo defaults to the most secure method available (in order of Touch ID, Security key, Duo Mobile push, YubiKey passcode, Duo Mobile passcode, Hardware token passcode, SMS passcode, Phone call).
  • The "Remember me" checkbox is replaced by a "Yes, this is my device" button.

Send Me a Push

On your mobile device, respond to the push notification via the Duo app or the alert displayed.
 Push Notification to be responded to on a mobile device asking the user to verify their identity and approve the login to UT Central Authentication Service.

Traditional Duo App Approve/Deny Response

Duo Universal Prompt instructing the user to approve a Duo Push notification sent to their device, with an Other options link available. Duo Mobile approval screen asking the user to confirm a login to UT Central Authentication Service, with Approve and Deny buttons to respond.

Verified Push App Approve/Deny Response

Duo Universal Prompt instructing the user to open the Duo Mobile app and enter the displayed verification code to approve. Duo Mobile verification screen prompting the user to enter the verification code shown on the login screen to approve a sign‑in.

Enter a Passcode

  1. Hardware Token
    1. Click 'Enter a Passcode.'
    2. Locate your hardware token and press the button.
      Duo hardware token showing the button the user presses to generate a one‑time passcode after selecting Enter a Passcode.
    3. Enter the 6 digit code into the box displayed on the Duo login screen.
  2. Smartphone App
    1. Click 'Enter a Passcode.'
    2. Open the Duo Mobile app on your device, tap Show, and enter the passcode.
      Duo Mobile app displaying a one‑time passcode for login verification.
    3. Enter the 6 digit code into the box displayed on the Duo login screen.

'Accept' or 'Allow' any requested permissions

If the app you are logging into requires additional permissions (uncommon outside of Google), you may be prompted for Microsoft apps & services to access your account. 
Google permissions screen prompting the user to allow Microsoft apps & services to access their account, with an Allow button.

Print Article